I use restrictions to control access to my pages.
In my security.drl file, I have :
rule RestrictAccessClientEdit when check: PermissionCheck(name == "/ClientEdit.xhtml", action == "render") Role(name == "admin") then check.grant(); rule RestrictAccessOrderEdit when check: PermissionCheck(name == "/OrderEdit.xhtml", action == "render") Role(name == "admin") then check.grant(); end;
check: PermissionCheck(name == "/*Edit.xhtml", action == "render")
I'm pretty sure wildcards aren't supported by Drools - you can probably use String.endsWith(), however it might be better to ask on the Drools mailing list, there's a lot more knowledgeable people there.
http://labs.jboss.com/drools/lists.html